package main

import (
	"bytes"
	"encoding/json"
	"fmt"
	"io"
	"io/ioutil"
	"log"
	"next-ppt/method"
	"strings"

	"github.com/gin-gonic/gin"
)

type Data struct {
	Token string `json:"token"`
}

func ApiUser() gin.HandlerFunc {
	return func(c *gin.Context) {

		contentType := c.Request.Header.Get("Content-Type")
		//log.Println(contentType)
		if c.Request.Method == "POST" {
			if contentType == "application/json" {

				var data Data

				dataa, err := io.ReadAll(c.Request.Body)
				if err != nil {
					c.JSON(200, gin.H{
						"message": "解析参数错误",
					})
					c.Abort()
					return
				}
				defer c.Request.Body.Close() // 确保关闭请求体
				c.Request.Body = ioutil.NopCloser(bytes.NewReader(dataa))
				if err := json.Unmarshal(dataa, &data); err != nil {
					c.JSON(200, gin.H{
						"message": "解析参数错误",
					})
					c.Abort()
					return
				}

				if data.Token != "" {
					token, err := method.VerifyToken(data.Token)
					if !token {
						c.JSON(200, gin.H{
							"message": "token错误",
						})
						log.Println(err)
						c.Abort()
						return
					}
				}
				c.Next()
			} else {
				c.Next()
				return
			}
		}
		c.Next()

	}
}

func Cors() gin.HandlerFunc {
	return func(c *gin.Context) {
		me := c.Request.Method                   //请求方法
		origin := c.Request.Header.Get("Origin") //请求头部
		var headerKeys []string                  // 声明请求头keys
		for k, _ := range c.Request.Header {
			headerKeys = append(headerKeys, k)
		}
		headerStr := strings.Join(headerKeys, ", ")
		if headerStr != "" {
			headerStr = fmt.Sprintf("access-control-allow-origin, access-control-allow-headers, %s", headerStr)
		} else {
			headerStr = "access-control-allow-origin, access-control-allow-headers"
		}
		if origin != "" {
			c.Writer.Header().Set("Access-Control-Allow-Origin", "*")
			c.Header("Access-Control-Allow-Origin", "*")                                       // 这是允许访问所有域
			c.Header("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE,UPDATE") //服务器支持的所有跨域请求的方法,为了避免浏览次请求的多次'预检'请求
			// header的类型
			c.Header("Access-Control-Allow-Headers", "Authorization, Content-Length, X-CSRF-Token, Token,session,X_Requested_With,Accept, Origin, Host, Connection, Accept-Encoding, Accept-Language,DNT, X-CustomHeader, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type, Pragma")
			// 允许跨域设置 可以返回其他子段
			c.Header("Access-Control-Expose-Headers", "Content-Length, Access-Control-Allow-Origin, Access-Control-Allow-Headers,Cache-Control,Content-Language,Content-Type,Expires,Last-Modified,Pragma,FooBar") // 跨域关键设置 让浏览器可以解析
			c.Header("Access-Control-Max-Age", "172800")                                                                                                                                                           // 缓存请求信息 单位为秒
			c.Header("Access-Control-Allow-Credentials", "false")                                                                                                                                                  // 跨域请求是否需要带cookie信息 默认设置为true
			c.Set("content-type", "application/json")                                                                                                                                                              // 设置返回格式是json
		}
		//放行所有OPTIONS方法
		if me == "OPTIONS" {
			c.JSON(200, "Options Request!")
		}
		// 处理请求
		c.Next() // 处理请求
	}
}
